Senior Engineer - DevSecOps

The company, a leader in AI-powered cloud and digital infrastructure, is seeking a Senior DevSecOps Engineer to play a pivotal role in designing, implementing, and maintaining secure, scalable, and automated DevSecOps pipelines across both cloud and on-premises environments. This position ensures that security is embedded throughout the software development lifecycle (SDLC), from infrastructure provisioning (IaC) to deployment, monitoring, and incident response. The ideal candidate will bring hands-on experience with automation, cloud security, continuous integration/continuous deployment (CI/CD), and secure coding practices. Collaboration with development, operations, and security teams to promote a culture of "security as code" will be essential.

Responsibilities:

• Design, build, and maintain secure CI/CD pipelines for continuous integration and delivery.
• Integrate automated security checks (SAST, DAST, SCA, secret scanning) into build and deployment workflows.
• Champion "shift-left" security by embedding controls early in the development lifecycle.
• Develop and maintain Infrastructure as Code (IaC) using tools such as Terraform and Ansible.
• Implement configuration management and drift detection across multi-environment deployments.
• Ensure secure configuration and monitoring of cloud environments (Azure, the company Cloud, etc.).
• Enforce cloud security best practices using frameworks such as CIS Benchmarks.
• Review IaC templates to prevent misconfigurations and enforce Policy-as-Code.
• Participate in threat modeling, vulnerability assessments, and penetration testing efforts.
• Harden container images and Kubernetes clusters and implement runtime security.
• Collaborate with security teams to identify and remediate vulnerabilities.
• Develop scripts and automation for security operations and compliance checks.
• Implement secure secrets management with tools like Vault and Azure Key Vault.
• Maintain comprehensive documentation of security controls, configurations, and architecture.
• Collaborate with developers and security engineers to promote secure coding practices.

Qualifications: Required Skills / Qualifications:

• Proven experience in DevSecOps, cybersecurity, and infrastructure automation.
• Deep familiarity with SDLC processes and Infrastructure as Code (Terraform, Ansible).
• Strong knowledge of cloud security best practices and cloud-native security tooling.
• Proficiency in scripting and automation (Python, Bash, PowerShell, etc.).
• Excellent communication skills for presenting findings to technical and non-technical stakeholders.

Preferred Skills / Qualifications:

• Hands-on experience with Kubernetes security.
• Familiarity with major cloud platforms including Azure, AWS, and the company Cloud.
• Knowledge of modern DevOps practices and secure CI/CD architecture.
• Relevant certifications (e.g., CDP, CKA, CKS, OSCP) are advantageous.

What Working At the company Offers: The company provides a diverse and inclusive work environment, fostering a culture of trust, accountability, and high performance. Our values include Grit, Passion, and Impact. Benefits include a competitive salary, annual performance bonus, discount cards, comprehensive medical, dental, vision, and life insurance, and access to leading learning and development platforms.